Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 19 Jan 2010 02:22:03 +0200
From:      Ed Jobs <>
Subject:   Re: /etc/hosts.deniedssh
Message-ID:  <>
In-Reply-To: <>
References:  <>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help
Content-Type: Text/Plain;
Content-Transfer-Encoding: quoted-printable

On Tuesday 19 January 2010 00:39, David Southwell wrote:
> Examples from hosts.deniedssh
> I seem to be on the receiving end of a concerted series of unsuccessful
>  break in attacks on one of our systems. One small part of the attack=20
>  resulted in over 2000 entries in our hosts.deniedssh file in less than 1
>  hour.
> I would be interested in any comments on the small example shown=20
below and
>  any advice.
> Thanks in advance
> David

2k entries are too much indeed. are you running ssh on port 22?
if yes, (and your users are ok with it) you can change it to another port.
or maybe, temporary disable ssh login and use cron to enable it again in=20
some time in the future.

Save the whales.  Club a seal instead.

Content-Type: application/pgp-signature; name=signature.asc 
Content-Description: This is a digitally signed message part.

Version: GnuPG v1.4.10 (GNU/Linux)



Want to link to this message? Use this URL: <>